IOC Radar
IPMediumSignal 66/100

151.115.53.238

Location
PolandPoland
Warsaw, 14
ASN
AS12876
Scaleway
First Seen
Jan 31, 2026
Last Seen
Apr 21, 2026
Jan 31
First Seen
134d ago
Apr 21
Last Seen
55d ago
5
Reports
source reports
66%
Confidence
medium
Found in 5 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
66%
Signal Score
66 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

6 techniques

Network Information

CountryPLPoland
RegionWarsaw, 14
ASNAS12876
OrganizationScaleway

IP Category

VPN
VPN exit node

Feed Intelligence Summary

5 reports66% confidence
5
Source reports
66%
Confidence score
Category tags
active scanactive scanningbrute forcebrute force attackercowrieddosdenial of servicedionaeaeuropeexploitation activityfattindicatornetworkp0fpolandportscanreconnaissanceresearchedscannerscannerssensor-taggedservice scant1190t1203t1499.001t1595.001t1595.002t1595.003tannertpotvpnvpn ipvultrweb application attackweb exploitation

Activity Timeline

1 total obs
Apr 21Apr 21

Threat Activity Heatmap

· Peak: 2026-04-21
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
66
SIGNAL
Signal Score
66%
Confidence
5
Reports
First seenJan 31, 2026
Last seenApr 21, 2026
GeolocationPL
CountryPoland
LocationWarsaw, 14
ASNAS12876
OrgScaleway
Coords52.2484, 21.0026
VPN

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Paris (France) honeypot
raw
inetnum: 151.115.0.0 - 151.115.63.255 netname: SCALEWAY-WAW1 descr: Scaleway - Warsaw, Poland status: LEGACY remarks: Abuse reports : https://abuse.online.net country: PL org: ORG-ONLI1-RIPE admin-c: MM42047-RIPE tech-c: MM42047-RIPE mnt-by: ONLINE-NET-MNT created: 2019-05-06T12:04:50Z last-modified: 2022-05-04T17:24:57Z source: RIPE organisation: ORG-ONLI1-RIPE mnt-ref: MNT-TISCALIFR-B2B org-name: Scaleway org-type: OTHER address: 8 rue de la ville l'eveque 75008 PARIS abuse-c: AR32851-RIPE mnt-ref: ONLINE-NET-MNT mnt-ref: PROXAD-MNT mnt-by: ONLINE-NET-MNT created: 2015-07-10T15:20:41Z last-modified: 2026-03-06T10:49:57Z source: RIPE # Filtered person: Mickael Marchand address: 8 rue de la ville l'eveque 75008 PARIS phone: +33173502000 nic-hdl: MM42047-RIPE mnt-by: MMA-MNT created: 2015-07-10T15:02:32Z last-modified: 2016-02-23T12:43:25Z source: RIPE # Filtered route: 151.115.0.0/18 descr: SCALEWAY descr: Warsaw, Poland origin: AS12876 mnt-by: MNT-TISCALIFR mnt-by: ONLINE-NET-MNT created: 2019-10-03T15:10:19Z last-modified: 2022-05-03T10:05:58Z source: RIPE
references
https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 1 month ago
Appeared in 5 threat reports